Ransomware hits 10K Australians

An email appears to come from local energy company AGL, but delivers ransomware.

At least 10,000 Australians have been targeted in a ransomware campaign that lures recipients with an email that appears to come from local energy company AGL, according to the Sydney Morning Herald.

A phony bill appears to come from the energy provider, but when recipients click on a link to download their bill, a .zip file is delivered instead. The malware then freezes the device, at which point a ransom of $640 (USD) is demanded to regain control.

As the emails are targeting individuals at their workplace, a further danger is the malware providing attackers with access to corporate emails which could then be used to spread the scam further.

Once the malware is delivered, the only solution is to restore from a backup or to wipe the computer and start from scratch, said Raymond Schippers​, a senior analyst at Check Point, which analyzed the malware website.

Get SC Media delivered to your inbox

Whitepaper of the Day

Newswire

Buzz

I would like to receive relevant information via email from Haymarket Media.

SC Media arms cybersecurity professionals with the in-depth, unbiased business and technical information they need to tackle the countless security challenges they face and establish risk management and compliance postures that underpin overall business strategies.